Update expl_connectwise_screenconnect_vuln_feb24.yar

Neo23x0 · Feb 23, 2024 · 86c1054 · 86c1054
1 parent 13f6a74
commit 86c1054
Showing 1 changed file with 1 addition and 1 deletion.
diff --git a/yara/expl_connectwise_screenconnect_vuln_feb24.yar b/yara/expl_connectwise_screenconnect_vuln_feb24.yar
@@ -114,7 +114,7 @@ rule SUSP_ScreenConnect_User_2024_No_Logon_Feb24 {
 
 rule SUSP_ScreenConnect_Exploitation_Artefacts_Feb24 : SCRIPT {
    meta:
-      description = "Detects post exploitation indicators observed in relation to the ConnectWise ScreenConnect (versions prior to 23.9.8) vulnerability that allows an Authentication Bypass"
+      description = "Detects post exploitation indicators observed by HuntressLabs in relation to the ConnectWise ScreenConnect (versions prior to 23.9.8) vulnerability that allows an Authentication Bypass"
       author = "Florian Roth"
       reference = "https://www.huntress.com/blog/slashandgrab-screen-connect-post-exploitation-in-the-wild-cve-2024-1709-cve-2024-1708"
       date = "2024-02-23"